A threat group linked to China has exploited vulnerabilities in Connectwise ScreenConnect and F5 BIG-IP software, deploying customized malware capable of installing additional backdoors on compromised Linux systems. This aggressive campaign is under surveillance by Mandiant, a Google subsidiary, which…
New Phishing Campaign Targets Credentials Using MassLogger Malware A resurgence of the MassLogger malware has been detected, targeting credentials from major platforms including Microsoft Outlook, Google Chrome, and various instant messaging applications. This phishing campaign, primarily aimed at users in…
Recent Data Breaches Affect Iberia and Air Miles España, S.A. The Everest ransomware group has made headlines with alarming claims of successful breaches at Iberia, Spain’s national airline. According to the group, they have extracted a substantial database of 596…
ZoneAlarm Faces Data Breach, User Information Compromised ZoneAlarm, a prominent internet security software company owned by Check Point Technologies, has confirmed a significant data breach affecting its user community on the discussion forum. The incident, which was reported by The…
Email Security & Protection, Fraud Management & Cybercrime, Healthcare Mindpath Health Settles Claim for $3.5 Million; Delta Dental Notifies 146,000 of Breach Marianne Kolbasuk McGee (HealthInfoSec) • November 24, 2025 Email compromises remain a significant concern in the healthcare sector,…
Digital Transformation Poses New Cybersecurity Risks for Cannabis Businesses Recent developments in the cannabis industry underscore a growing vulnerability as digital transformation accelerates. A recent report highlights how these advancements have inadvertently created more entry points for cybercriminals, exposing cannabis…
Cybersecurity experts have recently disclosed a significant, now-resolved vulnerability in Amazon Web Services (AWS) Managed Workflows for Apache Airflow (MWAA) that could have enabled attackers to hijack user sessions and execute remote code on affected instances. This vulnerability, coined FlowFixation…
Cybersecurity Incident: Accellion File Transfer Appliance Targeted by UNC2546 Cybersecurity researchers reported a significant data theft and extortion campaign linked to a series of attacks targeting Accellion File Transfer Appliance (FTA) servers. The cybercrime group identified as UNC2546 has been…
A critical breach of cybersecurity measures can have devastating implications for organizations, especially when it involves a failure to detect intrusions. InfoTrax Systems, a technology firm based in Utah, serves as a stark example. The company fell victim to multiple…
Agentic AI, Artificial Intelligence & Machine Learning, Cloud Security Israeli Startup Plans to Enhance AI Agent Security Within Cloud Platforms Michael Novinson (MichaelNovinson) • November 24, 2025 Eyal Fisher, co-founder and chief product officer, Sweet Security (Image: Sweet Security) Sweet…
